$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3230382e302f32332d3233203d3e203338303139.roa File: 3133392e3232302e3230382e302f32332d3233203d3e203338303139.roa (raw, json) Hash identifier: eBnzng95SQvS1PHlXy5Aacke9oTcHehMvDHQURJ3mYc= Subject key identifier: B3:D2:E2:DD:34:79:5D:0A:EB:E5:BC:C3:79:E7:22:8D:03:17:F5:48 Certificate issuer: /CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Certificate serial: 2DBDBF2334D59D7436CFA0C9D59C134FEC0DF527 Authority key identifier: 16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3230382e302f32332d3233203d3e203338303139.roa Signing time: Fri 24 Apr 2026 07:03:35 +0000 ROA not before: Fri 24 Apr 2026 06:58:35 +0000 ROA not after: Fri 23 Apr 2027 07:03:35 +0000 asID: 38019 IP address blocks: 139.220.208.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:bd:bf:23:34:d5:9d:74:36:cf:a0:c9:d5:9c:13:4f:ec:0d:f5:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16B72C37618BD84AE412DE28AC3254DA737FB3EC Validity Not Before: Apr 24 06:58:35 2026 GMT Not After : Apr 23 07:03:35 2027 GMT Subject: CN=B3D2E2DD34795D0AEBE5BCC379E7228D0317F548 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:97:fc:a4:02:e1:c0:b2:44:a6:8f:20:36:5e: 12:b1:ca:0a:ab:25:e4:9c:52:ae:fc:8d:d4:b3:b1: 60:1f:6c:fe:e7:38:c5:d8:1e:90:6f:64:4a:86:cb: 27:84:6a:59:d4:70:74:d0:aa:88:41:fa:bf:47:43: 64:04:a3:6c:22:5e:a7:c7:b5:5a:4b:eb:ff:08:e8: 02:9e:15:22:87:b8:bc:e3:eb:fa:2a:c4:a5:5f:3f: 2c:50:3c:94:f1:c0:fb:0a:84:c8:69:0c:65:0f:b6: ff:f9:12:30:7a:7b:53:30:b4:e2:47:9b:e6:74:1a: bf:47:35:e5:7a:6d:a3:62:b2:75:d0:94:21:09:6e: ef:27:7a:d6:c4:1a:92:13:14:14:c4:79:e8:83:5f: c1:59:74:9d:00:80:5f:3e:98:04:5d:4c:80:ab:8a: 79:01:1b:83:d6:7d:7c:ee:d5:2c:20:1f:7e:27:1a: e6:f4:83:b0:52:b3:ee:63:d8:6b:e0:08:e5:60:fe: a8:41:de:b2:77:d5:97:41:0a:84:10:3b:b5:e4:b4: e7:e9:3d:da:2b:e7:bb:5e:5b:fb:96:2d:6a:13:35: 97:a2:d0:0c:29:f9:b3:5e:9b:ae:b8:0f:5c:42:84: 04:94:bb:28:a0:5e:d6:08:af:d6:0c:b5:84:e2:aa: 05:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:D2:E2:DD:34:79:5D:0A:EB:E5:BC:C3:79:E7:22:8D:03:17:F5:48 X509v3 Authority Key Identifier: keyid:16:B7:2C:37:61:8B:D8:4A:E4:12:DE:28:AC:32:54:DA:73:7F:B3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/16B72C37618BD84AE412DE28AC3254DA737FB3EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/16B72C37618BD84AE412DE28AC3254DA737FB3EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/1/3133392e3232302e3230382e302f32332d3233203d3e203338303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.220.208.0/23 Signature Algorithm: sha256WithRSAEncryption 82:61:60:7f:de:60:62:a5:f1:a1:71:0b:b9:dd:a4:bc:8d:e0: 58:d0:0a:87:f9:14:69:a5:d6:6c:2b:ea:ce:04:a9:ce:67:81: 0b:24:63:af:35:9a:24:1a:e0:c8:2e:ce:68:46:62:78:8b:ca: 4e:e3:1c:e9:20:2f:8c:2d:87:f1:de:00:a5:45:8b:19:b7:98: ae:44:b8:61:60:d4:72:da:0b:75:b0:1b:19:83:8e:a4:e1:bd: 3b:84:3b:70:93:b9:fa:73:5b:4e:c5:23:44:e5:b7:c4:1b:9d: a6:6c:fb:e6:73:70:63:88:f3:42:af:07:3a:74:50:26:e2:90: e9:94:0a:e8:cb:d6:32:a7:34:7c:5c:fa:8e:2b:38:52:84:84: 93:95:d1:ad:25:c5:2b:8f:89:15:ae:eb:0e:0f:48:dd:66:bf: aa:69:9f:8c:87:11:a5:c6:4e:9d:88:0f:62:44:d9:fe:b5:d6: 49:a9:d4:f7:fb:1a:fb:c1:00:da:12:25:f1:61:bd:77:17:eb: d0:5a:8b:4f:90:14:c2:35:df:1e:dd:9e:ce:e0:6a:bb:57:49: f3:23:9b:c1:6c:8f:27:30:d6:33:c3:76:b6:23:31:28:13:2a: 1f:60:f2:84:92:5e:10:5f:c4:a8:3c:1f:c4:81:58:eb:38:c7: b8:8d:40:ee -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIULb2/IzTVnXQ2z6DJ1ZwTT+wN9ScwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3 MzdGQjNFQzAeFw0yNjA0MjQwNjU4MzVaFw0yNzA0MjMwNzAzMzVaMDMxMTAvBgNV BAMTKEIzRDJFMkREMzQ3OTVEMEFFQkU1QkNDMzc5RTcyMjhEMDMxN0Y1NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6l/ykAuHAskSmjyA2XhKxygqr JeScUq78jdSzsWAfbP7nOMXYHpBvZEqGyyeEalnUcHTQqohB+r9HQ2QEo2wiXqfH tVpL6/8I6AKeFSKHuLzj6/oqxKVfPyxQPJTxwPsKhMhpDGUPtv/5EjB6e1MwtOJH m+Z0Gr9HNeV6baNisnXQlCEJbu8netbEGpITFBTEeeiDX8FZdJ0AgF8+mARdTICr inkBG4PWfXzu1SwgH34nGub0g7BSs+5j2GvgCOVg/qhB3rJ31ZdBCoQQO7XktOfp Pdor57teW/uWLWoTNZei0Awp+bNem664D1xChASUuyigXtYIr9YMtYTiqgVdAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUs9Li3TR5XQrr5bzDeecijQMX9UgwHwYDVR0j BBgwFoAUFrcsN2GL2ErkEt4orDJU2nN/s+wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8xLzE2QjcyQzM3NjE4QkQ4NEFFNDEyREUyOEFDMzI1 NERBNzM3RkIzRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMTZCNzJDMzc2MThCRDg0QUU0MTJERTI4QUMzMjU0REE3MzdGQjNFQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDgyNzE2MTkvMS8zMTMzMzkyZTMy MzIzMDJlMzIzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODMwMzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYvc0DANBgkqhkiG9w0BAQsFAAOCAQEAgmFgf95gYqXxoXELud2k vI3gWNAKh/kUaaXWbCvqzgSpzmeBCyRjrzWaJBrgyC7OaEZieIvKTuMc6SAvjC2H 8d4ApUWLGbeYrkS4YWDUctoLdbAbGYOOpOG9O4Q7cJO5+nNbTsUjROW3xBudpmz7 5nNwY4jzQq8HOnRQJuKQ6ZQK6MvWMqc0fFz6jis4UoSEk5XRrSXFK4+JFa7rDg9I 3Wa/qmmfjIcRpcZOnYgPYkTZ/rXWSanU9/sa+8EA2hIl8WG9dxfr0FqLT5AUwjXf Ht2ezuBqu1dJ8yObwWyPJzDWM8N2tiMxKBMqH2DyhJJeEF/EqDwfxIFY6zjHuI1A 7g== -----END CERTIFICATE-----Generated at Wed May 13 12:42:48 2026 by rpki-client